Netgate Discussion Forum
    • Categories
    • Recent
    • Tags
    • Popular
    • Users
    • Search
    • Register
    • Login

    Problem Route with LAN?

    Scheduled Pinned Locked Moved Routing and Multi WAN
    15 Posts 6 Posters 1.4k Views
    Loading More Posts
    • Oldest to Newest
    • Newest to Oldest
    • Most Votes
    Reply
    • Reply as topic
    Log in to reply
    This topic has been deleted. Only users with topic management privileges can see it.
    • A
      akuma1x
      last edited by

      Why don't you NOT double router/firewall your network, and use only 1 of those devices - either pfsense or mikrotik?

      Jeff

      1 Reply Last reply Reply Quote 0
      • K
        kor_sal
        last edited by

        This post is deleted!
        1 Reply Last reply Reply Quote 0
        • K
          kor_sal
          last edited by kor_sal

          This post is deleted!
          1 Reply Last reply Reply Quote 0
          • johnpozJ
            johnpoz LAYER 8 Global Moderator
            last edited by johnpoz

            Create a gateway in pfsense pointing to your 20.x.x.x/30 IP of your mik router - btw 20 - is public space.. Don't use that as a transit network.. use 10/30 if yoru using 192.168 and 172 address space.. Also 172.168 as also public.. Are those typo's? Did you pull those out your ____ ?

            Once you have the gateway setup to your mik, create a route for the networks downstream of your mik.. Your mik is not natting is it?? If so to allow traffic to network behind mik you would have to create port forwards on your mik.

            Then create rules on opt to allow the trafic you want.

            Still wondering what is the point of this... Just hang that network behind the mik directly on your opt interface of pfsense.

            Use of downstream router is normally not something new user to networking would need or want to do.. If you have graduated to the want/need of a downstream router you should have the understanding of routing to implement it.

            An intelligent man is sometimes forced to be drunk to spend time with his fools
            If you get confused: Listen to the Music Play
            Please don't Chat/PM me for help, unless mod related
            SG-4860 24.11 | Lab VMs 2.8, 24.11

            1 Reply Last reply Reply Quote 0
            • K
              kor_sal
              last edited by

              johnpoz thank for reply.
              Now I can ping from LAN(192) from ping to LAN(172)on Mikrotic.
              But when I ping from LAN(172)from Mikrotic to LAN(192) cannot reply (destination host unreachable).
              How to resolve that problem? Please help.

              Thank for reply.

              1 Reply Last reply Reply Quote 0
              • johnpozJ
                johnpoz LAYER 8 Global Moderator
                last edited by

                Well you would have to have routes on your mik, I just assumed its default would be towards pfsense 20.x interface

                You have fixed these BAD network IPs, or were they just typos?

                An intelligent man is sometimes forced to be drunk to spend time with his fools
                If you get confused: Listen to the Music Play
                Please don't Chat/PM me for help, unless mod related
                SG-4860 24.11 | Lab VMs 2.8, 24.11

                1 Reply Last reply Reply Quote 0
                • K
                  kor_sal
                  last edited by

                  Yes, IP on LAN (192,172,20) I just assign it for testing . When I success testing i will change those IP to the right standard private network. But I still have that problem. On my Mik router i have static route to (192.168.1.0/24 gateway 20.0.0.0). If you not sure about my problem i will screenshot my route to you.

                  1 Reply Last reply Reply Quote 0
                  • K
                    kor_sal
                    last edited by

                    2019-09-02_10-20-19.png

                    1 Reply Last reply Reply Quote 0
                    • johnpozJ
                      johnpoz LAYER 8 Global Moderator
                      last edited by

                      Well that looks wrong.. how is 192.168 lan reachable?

                      An intelligent man is sometimes forced to be drunk to spend time with his fools
                      If you get confused: Listen to the Music Play
                      Please don't Chat/PM me for help, unless mod related
                      SG-4860 24.11 | Lab VMs 2.8, 24.11

                      1 Reply Last reply Reply Quote 0
                      • chpalmerC
                        chpalmer
                        last edited by

                        Dude.. Fix your LAN addresses first!

                        https://lmgtfy.com/?q=lan+address+ranges

                        There are reasons..

                        Triggering snowflakes one by one..
                        Intel(R) Core(TM) i5-4590T CPU @ 2.00GHz on an M400 WG box.

                        1 Reply Last reply Reply Quote 0
                        • seanbullS
                          seanbull Banned
                          last edited by

                          Can you send us a screenshot?

                          1 Reply Last reply Reply Quote 0
                          • K
                            kor_sal
                            last edited by

                            This post is deleted!
                            1 Reply Last reply Reply Quote 0
                            • K
                              kor_sal
                              last edited by

                              After i try to verify one by one. Now i saw a problem and solve it . I assign a wrong get way on router. Really happy and Thank you for all your help.

                              1 Reply Last reply Reply Quote 0
                              • First post
                                Last post
                              Copyright 2025 Rubicon Communications LLC (Netgate). All rights reserved.